Check whether a CVE is listed in the CISA Known Exploited Vulnerabilities catalog. Answers if the vulnerability is actively exploited for effective triage.
MIT
205,041 tools. Last updated 2026-06-15 02:33
"A search for information on Common Vulnerabilities and Exposures (CVE)" matching MCP tools:
- Get detailed vulnerability information by CVE identifier, including severity scores, technical details, and exploitation status for threat assessment and patching prioritization.Apache 2.0
- Search and filter vulnerability data from the Mallory MCP Server database to identify security risks, track trends, and generate reports based on CVE IDs, descriptions, severity scores, or technologies.Apache 2.0
- Retrieve detailed vulnerability information including CVE data, risk scores, and remediation guidance using a vulnerability ID. Prioritize vulnerabilities for patching.MIT
- Find exposed credentials and secrets in GitHub public repositories related to a search term such as a CVE ID or keyword, enabling security researchers to identify potential leaks.Apache 2.0
- Retrieve vulnerability details for a specific CVE, including CVSS scores, severity, description, associated advisories, and known exploit information.Apache 2.0
Matching MCP Servers
- AlicenseBqualityDmaintenanceProvides conversational access to a local CVE (Common Vulnerabilities and Exposures) database, enabling natural language queries to search vulnerabilities, retrieve detailed CVE information, and view security statistics.Last updated3MIT
- AlicenseBqualityCmaintenanceA Model Context Protocol (MCP) server for querying the CVE-Search API. This server provides comprehensive access to CVE-Search, browse vendor and product、get CVE per CVE-ID、get the last updated CVEs.Last updated6100MIT
Matching MCP Connectors
ship-on-friday MCP — wraps StupidAPIs (requires X-API-Key)
Search PubMed and summarize biomedical literature — designed for AI health agents.
- Query ZoomEye's vulnerability database by keyword to retrieve detailed security vulnerabilities including CVE IDs, severity, and affected versions for specific products or vendors.MIT
- Search GitHub for public proof-of-concept exploit repositories for a CVE, with results sorted by star count to highlight credible exploits.Apache 2.0
- Retrieve comprehensive details and threat intelligence for a specific CVE from GreyNoise.MIT
- Check whether a given CVE identifier is included in the CISA Known Exploited Vulnerabilities (KEV) catalog, providing immediate insight into actively exploited vulnerabilities.Apache 2.0
- Search the Grype vulnerability database for CVEs, packages, or CPEs to find known vulnerabilities.Apache 2.0
- Retrieve comprehensive details about a vulnerability by providing its CVE identifier, including impact, severity, and remediation information.Apache 2.0
- Search for detailed vulnerability information by CVE, CNVD, or CNNVD ID and receive comprehensive, formatted security vulnerability details.MIT
- Audit project dependencies against a CVE database to find known vulnerabilities. Supports npm, PyPI, Maven, RubyGems, and more. Bulk query up to 50 packages per call.MIT
- Search the CVE database using filters like product, vendor, severity, date range, EPSS score, CWE, CVSS, and CISA KEV status to discover vulnerabilities matching specific criteria.MIT
- Look up full CISA KEV record for a CVE: federal patch deadline, required action, ransomware risk, vendor/product, and lifecycle metadata. Returns 404 if not in catalog.MIT
- Check known vulnerabilities for any package version across 14+ ecosystems. Returns CVE/GHSA IDs and severity scores.MIT
- Audit a domain's technology stack for known vulnerabilities. Identifies technologies, queries CVEs, enriches with CISA KEV deadlines and exploit availability.MIT
- Run Nmap Scripting Engine (NSE) vulnerability scans against a target to discover known vulnerabilities, including CVE identifiers. Uses safe scripts by default.Apache 2.0
- Scan project directories for CVE vulnerabilities by detecting npm, Python, Go, and Rust manifests, querying live OSV.dev data to generate structured vulnerability reports with severity counts and fix recommendations.MIT